JP4529995B2 - Process management device and process management system - Google Patents

Description

  The present invention relates to an information recording medium used for a target product passing through a plurality of processes, and a process management apparatus and a process management system for the target product using the information recording medium.

  In recent years, an information recording medium having a communication distance of several meters or more and capable of simultaneously recognizing several tens or more, such as a tag called an RFID tag, has been used for supply chain management and article management in the field of distribution and sales. Process management devices and process tracking devices intended for use in applications have been proposed.

  In Patent Document 1, when a product is input in its own process, product identification information and communication destination address information recorded on an RFID tag attached to the product is read, and the device indicated by the communication destination address information is Notifying the input of the product indicated by the product identification information while taking correspondence with the identification information of the own device, and when the product is output from the own process, the product identification recorded on the RFID tag attached to the product The information and the communication destination address information are read, and the output of the product indicated by the product identification information is notified to the device indicated by the communication destination address information while taking correspondence with the identification information of the own device. By collecting this notification, the distribution status of each product can be grasped in real time.

JP 2003-316861 A

  According to Patent Document 1, when the target product passes through each process, the information recorded in the RFID tag is read out by the process management device, and the information is output to the process tracking device, so that a plurality of branches can be performed. It is possible to monitor and manage a complicated manufacturing process flow in which a plurality of products are integrated into one product for each product.

  In the above-described configuration, a process management apparatus that can be connected to a process tracking apparatus in each process in the manufacturing and distribution process and has a function of outputting information necessary for tracking the process through which the target product passes is necessary.

  In order to realize the method of tracking the movement path of the product as described above, a process tracking device is required for installing the process management device for all the processes in the product process and storing the information output from the process management device. It is. Furthermore, since all the process management devices need to be connected to the process tracking device, there is a problem that a great deal of cost is required.

  Therefore, an object of the present invention is to avoid setting as much as possible expensive equipment in product manufacturing and distribution processes as much as possible, and to track the process through which the target product passes. There is to do.

  The process management apparatus of the present invention includes a data transmission / reception unit that transmits / receives data to / from an information recording medium, a process data generation unit that generates process data indicating a process, and process pass certificate data indicating that the process has passed. And a process pass certificate data generating unit that generates from the process data shown, and the data transmitting / receiving unit transmits and receives the process data and the process pass certificate data to and from the information recording medium.

  In addition, the process management apparatus generates the process pass certificate data using the identification data recorded on the information recording medium.

  In addition, the process management apparatus generates the process pass certificate data using the same or different key data for each process.

  In addition, the process management apparatus transmits command data for setting or canceling prohibition of reading of data from the information recording medium or prohibition of writing of data to the information recording medium.

  The process management device includes a process order data storage unit indicating the nth process data, and the process pass certificate data generation unit includes at least the nth process data and the (n-1) th process data. From the process pass certificate data, the nth process pass certificate data is generated and transmitted to the information recording medium.

In addition, the process management device compares the process pass certificate data stored in the information recording medium that has passed through a plurality of processes and the verification process pass certificate data generated according to the process that has passed through the information recording medium. If they match, the information recording medium includes a process verification unit that determines that the process has passed through the above-described process.
The phrase “passed through the correct process” means that the process pass certificate data or the verification process pass certificate data indicates a process that has actually passed through the information recording medium.

  By using the data storage unit of the information recording medium RFID tag by the process management apparatus of the present invention, it becomes possible to verify whether the target product used in the information recording medium RFID tag has passed through the correct process.

  In addition, it is possible not to necessarily provide a management device and a process tracking device connected to the entire process management device. Further, it is possible to detect falsification of data of the information recording medium RFID tag.

  ADVANTAGE OF THE INVENTION According to this invention, it becomes possible to provide the process management apparatus or process management system which improved reliability rather than before.

  FIG. 1 shows a configuration in which an RFID tag as an information recording medium passes through a plurality of steps related to the present invention, and an external communication device reader / writer according to the present invention and an information recording medium RFID tag are described below. The configuration is shown in FIGS. 2 to 4, the method of tracking the process through the RFID tag is shown in FIGS. 5 to 13, and the method of tracking the process using the network connection management device is further shown in FIGS. A method for improving security and convenience will be described with reference to FIGS. 21 and 22 with reference to the drawings.

  FIG. 1 is a diagram showing a process management apparatus and an information recording medium RFID tag 300 that moves in two processes according to an embodiment of the present invention.

  Hereinafter, the information recording medium RFID tag 300 is referred to as an RFID tag 300. The RFID tag 300 moves 105 from the process A100 to the process B110. The process management apparatus A210 in the process A100 includes the control apparatus 200 and the external communication apparatus reader / writer 400. Hereinafter, the external communication device reader / writer 400 is referred to as a reader / writer 400.

  The process management apparatus B211 in the process B110 includes the control apparatus 201 and the reader / writer 450.

  The reader / writer 400 and the reader / writer 450 read data from the RFID tag 300, write data, and transmit / receive a command for executing the function of the RFID tag 300.

  The control device 200 and the control device 201 control the reader / writer 400 and the reader / writer 450, generate and manage data to be written to the RFID tag 300, or process and manage the read data. For convenience of illustration and explanation, only two processes are shown, but a plurality of substantially identical configurations are installed, and the RFID tag 300 goes through a plurality of processes. Therefore, the process management apparatus A210 and the process management apparatus B211 have the same configuration and the same function.

  When the RFID tag 300 passes through the process A100, the control device 200 issues a reader / writer 400 control command 101 to the reader / writer 400 in order to read data from the RFID tag 300 or write data. Upon receiving the command 101, the reader / writer 400 executes the command received from the control device 200, reads the RFID tag data from the RFID tag 300, writes the data, locks the memory area, and performs other processing. Command 102 is transmitted.

  The RFID tag 300 that has received the command 102 returns the execution result of the command 102 such as data read from the RFID tag 300 or a result of writing to the reader / writer 400 as response data 103.

  The reader / writer 400 processes the execution result for the RFID tag 300 into the response data 104 and returns it to the control device 200. The control device 200 performs processing such as accumulation of the response data 104, processing of the response data 104, and transmission of the result to an external device.

  In step A100, when the series of processing is completed, the information recording medium 300 moves 105 to step B110. The process B110 has the same configuration as the process A100, and includes a control device 201 and an external communication device reader / writer 401. Further, since the process is the same as that in the process A100, the description is omitted.

  In this example, an example in which the process A100 and the process B110 are configured is shown. However, the process may be configured by two or more processes, and the movement path of the process of the information recording medium 300 is branched. Alternatively, the same process may be passed twice or more.

  FIG. 2 is a diagram illustrating a configuration of an RFID tag system including the RFID tag 300 and the reader / writer 400. The reader / writer 400 includes a reader / writer main body 401 and a reader / writer antenna 402. The command data 102 is transmitted and electric power is supplied to the RFID tag 300 by radio waves, and the reader / writer 400 receives the response data 103 that is a response from the RFID tag 300.

  FIG. 3 is a block diagram showing the internal configuration of the RFID tag 300. The RFID tag 300 receives radio waves from a reader / writer, which is an external communication device, and performs rectification by an antenna 301 that transmits and receives signals and data to and from the reader / writer, and a rectifier 302 that rectifies the radio waves received from the antenna 301. A power supply unit 303 that detects the obtained voltage and supplies power to each unit, and amplifies and decodes a signal at the time of receiving command data, and also modulates at the time of transmission of response data and a communication method for control in these transmission / reception And a communication control unit 304 including a processing procedure for demodulating a received signal and command data, a processing procedure for executing the function of the RFID tag 300, and a processing procedure for controlling access to each data item, and responding to a reader / writer It comprises a control unit 305 that generates response data and a storage unit 306 that stores IDs, other information, and setting values of RFID tags. That.

  FIG. 4 is a diagram showing an internal configuration of the reader / writer 400. The reader / writer 400 includes a reader / writer main body 401 and a reader / writer antenna 402 that transmits radio waves and command data to the RFID tag and receives a response from the RFID tag. The reader / writer main body 401 transmits / receives command data to / from the RFID tag using the reader / writer antenna 402, and receives / receives a response from the transmitter / receiver 403, modulation during transmission of command data, amplification of signals during reception, A communication control unit 404 that performs a decoding and control communication method, a control unit 405 that controls the entire reader / writer, a reader / writer main unit 401, an external communication device such as a control device or a personal computer, data and operation commands A host interface 406 for performing communication and the like, and a power supply unit 407 for supplying power to each unit. Examples of commands transmitted from the reader / writer 400 to the RFID tag include a read command when reading the RFID tag ID and memory data, a write command when writing data to the RFID tag memory, and an RFID tag memory data. Use the lock command to disable reading or rewriting.

  Next, a method for verifying whether an RFID tag and a product to which the RFID tag has been attached has passed through a plurality of processes using the RFID tag and the system having the configuration shown in FIG. 1 will be described with reference to FIG. To FIG. First, processing to be performed on the RFID tag when passing through the process will be described with reference to FIGS.

  FIG. 5 is a diagram illustrating a configuration in which the RFID tag passes through three processes. The internal structure of the process management apparatus shown in FIG. The process A121, the process B122, and the process C123 are composed of a process management apparatus having the same configuration, and the RFID tag 300 passes through the process A121, the process B122, and the process C123 in this order. First, when the RFID tag 300 passes through the process A <b> 121, the process management apparatus 210 performs data reading / writing 124 on the RFID tag 300. A method for processing the read data, a method for generating and processing data to be written will be described with reference to FIGS.

Next, the RFID tag 300 moves 125 to the process B122. As in the process A121, the process management apparatus 211 reads and writes data from the RFID tag 300. Thereafter, the RFID tag 300 moves 126 to Step C123. In step C123, as in step A121 and step B122, the process management device 212 reads and writes data from the RFID tag 300.
The contents of reading and writing data from and to the RFID tag in each process will be described below with reference to FIGS.

  FIG. 6 is a diagram showing process codes of process A, process B, and process C shown in FIG. Each process management apparatus has a different process code 130 in each process. Each process code may be held by an external apparatus connected to the process management apparatus. It is desirable to have at least the process code of your own process. For example, the process code 130 is a management code determined for each process or a code indicating the location of the process, and indicates the process. good. In this example, it is assumed that the process code 130 of the process A121 is AAAA131, the process code 130 of the process B122 is BBBB132, and the process code 130 of the process C123 is CCCC133. The code 130 for each process is necessary when verifying whether the RFID 300 has passed through the correct process. The verification method will be described with reference to FIGS.

  FIG. 7 is a diagram showing a memory configuration of the RFID tag 300 and an example of data specifications in the embodiment of the present invention. The RFID tag 300 has four types (RESERVED 321, UII 322, TID 323, and USER 328) as the memory bank 320. The size 330 and stored data 340 of each memory bank 320 will be described.

  The RESERVED 321 stores a 32-bit password 341 for accessing or locking the memory of the RFID tag 300.

  The UII 322 stores 128 bits of ID, which is identification data set uniquely for each product to be attached.

  The TID 323 stores 32 bits of ID, which is identification data that is uniquely set for each RFID tag 300 that is generally set when the RFID tag 300 is manufactured.

  The USER 328 is an area where the user can freely write, read, or lock data in the RFID tag 300. In this example, there are four USER328s.

  In the embodiment of the present invention, the USER 1324, the USER 2325, and the USER 3326 are used to store the process codes for each process described in FIG. The USER 4 stores process pass certificate data 347 for verifying whether the correct process has been passed. By verifying the process pass certificate data 347 after passing through the process, it is possible to verify whether the target RFID tag 300 has passed through the correct process.

  A method of generating the process pass certificate data 347 will be described with reference to FIG. In this example, the memory configuration, size, and USER area configuration shown in FIG. 7 are used, but other memory configurations and sizes may be used as long as there are a plurality of USER areas where the user can freely write or read data. Alternatively, one USER area may be divided into a plurality of areas so that there are a plurality of USER areas.

  FIG. 8 is a diagram showing a process of generating process pass certificate data. The process pass certificate data is data that is generated for each process when the RFID tag 300 passes through a plurality of processes and is overwritten on the USER4 of the RFID tag 300. By verifying the process pass signature data later, It is possible to verify whether the RFID tag 300 has passed the correct process.

  A verification method and a specific example will be described with reference to FIGS. FIG. 8A illustrates a method of generating process pass certificate data in the first process. The process code of the process (here, AAAA140) is acquired from the process management apparatus. The function f () 141 has a function of calculating and converting a certain value into another value with the same length using the KEY 142. As an example of the function f () 141, a method of calculating input data using a hash function represented by SHA-1 or MD5, or a method of encrypting input data using an encryption key (here, KEY 142) and so on.

  Here, it is desirable that the length of the input data is the same as the length of the operation processing result data in the function f () 145. The reason is that since the memory size of the RFID tag is several tens to several hundreds of bytes, the writable data size is limited. If the length of the process pass signature data is larger than the memory size of the RFID tag 300, it cannot be written to the RFID tag memory. Since there are various methods for calculating the input data as described above, in the following description, the processing is performed using the function f () 141 and the KEY 142.

  KEY142 may be the same for each process, or may be different. Depending on the function f () 141, the KEY 142 may not be used. Hereinafter, a calculation method will be described based on a specific example. A result obtained by calculating the input data, that is, the process code AAAA140 in combination with the KEY142 by the function f () 141 is represented as f (AAAAA, KEY) 143. This f (AAAAA, KEY) 143 is the process pass signature data when passing through a certain process, and is written in the USER 4327 of the memory of the RFID tag 300 shown in FIG.

  Next, a method for generating process pass certificate data when the RFID tag enters the next process will be described with reference to FIG. The process pass certificate data f (AAAAA, KEY) 143 generated in the previous process stored in the USER 4327 of the RFID tag 300 is acquired, and an exclusive OR is performed between the process pass certificate data and the process code BBBB. Hereinafter, exclusive OR is described as EOR.

  Here, by taking the exclusive OR, the length of the data obtained by taking the exclusive OR of the input data and the process code becomes the same. Although a method other than exclusive OR may be used, it is desirable that the input data and the output data have the same length.

  f (AAAAA, KEY) EOR BBBB 144 is input to the function f () 145. If the function f () 145 is converted using the KEY 146 as before, it can be expressed as f (f (AAAAA, KEY) EOR BBBB, KEY) 147. This value is the process pass certificate data when passing through the second process. Then, the process pass certificate data is overwritten on the USER 4327 of the RFID tag 300. This process is repeated in the subsequent steps. In this example, the function f () 141 and the function f () 145 are the same, and the KEY 142 and the KEY 146 are the same. A different function and KEY may be used as long as it can manage which function and KEY is used in which process.

  FIG. 9 is a diagram illustrating the content of data in the RFID tag when the RFID tag described in FIG. 5 passes through the process. Initially, USER1324, USER2325, USER3326, and USER4327 of the RFID tag 300 store a state in which there is no data, that is, all 0 (hereinafter referred to as 0000). When the RFID tag 300 passes through the process A, the AAAA 350, which is the process code of the process A, is written in the USER 1324. Using the function f () 145 and KEY 146 described in FIG. 8 and the process code AAAA of the process A, the process pass certificate data f (AAAAA, KEY) 351 is obtained and written into the USER 4327. Since there is no previous process in the first process, the process pass certificate data of the previous process is not used, but 0000 or an initial value may be set. In that case, the process in the first step uses the left in FIG.

  Next, when the RFID tag 300 passes through the process B, the BBBB 352 that is the pass signature code of the process B is written into the USER 2325. Next, the process pass certificate data f (AAAA, KEY) written in the USER 4327 in the process A is read, and the process pass certificate data is read using the function f () 145, the key 146, and the process code BBBB352 of the process B. f (f (AAAAA, KEY) EOR BBBB, KEY) 353 is obtained and overwritten on USER4327.

  Next, when the RFID tag 300 goes through the process C, the CCCC 354 that is the process code of the process C is written into the USER 3326. Next, f (f (AAAAA, KEY) EOR BBBB, KEY) 353, which is the process pass certificate data written in USER 4327 in process B, is obtained, and the function f () 145 and KEY 146 and process code CCCC354 of process C are obtained. Is used to obtain the process pass certificate data f (f (f (AAAAA, KEY) EOR BBBB, KEY) EOR CCCC, KEY) 355 and overwrites USER4327.

  Here, in each step, USER1, USER2, and USER3 are written in order. However, it is only necessary to know which step data is written in which USER and in which order. In this example, writing is performed in order from USER1. Further, when the data is 0000, it is determined that nothing has been written, the data stored in order from USER1 is confirmed, and the process data is written in the area of 0000 that is first discovered.

  As another method, there is a method in which data indicating the position where process data is currently written is stored in another USER area, and the position / area where process data is written is obtained by acquiring the data. is there. Alternatively, the number of processes passed may be stored in another USER area, and the USER area to be written may be estimated from the number and written.

  FIG. 10 is a diagram showing a flowchart of the process management apparatus showing a process when a process code and process pass certificate data are written in an RFID tag in a certain process. In step S600, when the RFID tag 300 goes through its own process, the process proceeds to step S601 to start the process.

  Here, as means for recognizing that the RFID tag 300 has passed through its own process, a method of detecting a product to which the RFID tag 300 is attached by using infrared rays or other sensors, or reading of the RFID tag 300 is always performed. There is a method of recognizing when data of the RFID tag 300 can be acquired through repeated use of the RFID tag 300. In addition, there is a method in which a person visually confirms that the RFID tag 300 is in a range where the reader / writer of the process management apparatus and the RFID tag 300 can communicate, and instructs the start of processing.

  In step S601, the process pass certificate data stored in the USER4 of the RFID tag 300 is read using the reader / writer of the process management apparatus, and the process proceeds to step S602. Here, in the case of the first process, there is no data in USER4, that is, 0000 is stored. In that case, the process pass certificate data of the previous process may be handled as none or may be handled as 0000. Also, an initial value other than 0000 may be stored in USER4 and used when obtaining process pass certificate data. In step S602, the process code of the own process is acquired from the process management apparatus, and the process proceeds to step S603.

  In step S603, the process pass certificate data obtained in step S601 (none in the case of 0000, or 0000 is used, or an initial value as a predetermined value set in advance is used), or the own process obtained in step S602 is obtained. Using the function f () and KEY acquired from the code and the process management device, f (process pass certificate data EOR process code, KEY) is obtained, and the process proceeds to step S604.

  In step S604, using the reader / writer of the control device, f (process pass certificate data EOR process code, KEY) obtained in step S603 is overwritten on USER4 of the RFID tag 300, and the process proceeds to step S605.

  In step S605, using the reader / writer of the control device, the process code of the own process is written in the USER in which the RFID tag 300 is vacant, and the process proceeds to step S606. The method for searching for a free USER may be the same as the method described in FIG.

  In step S606, the process in its own process ends, and then the RFID tag 300 proceeds to the next process. This series of processes is executed for each process and for each RFID tag 300.

  Next, a method for verifying whether the product attached with the RFID tag has passed through the correct process using the process pass certificate data generated in FIGS. 5 to 10 will be described with reference to FIGS.

  FIG. 11 is a diagram illustrating data stored in the USER memory of the RFID tag 300 after the RFID tag 300 has passed through the process A, the process B, and the process C as illustrated in FIG. 5.

  The USER 1324 stores process data AAAA350 written in the process A. The USER 2325 stores process data BBBB352 written in the process B. USER 3326 stores process data CCCC 354 written in process C. The USER 4327 stores the process pass certificate data f (f (f (AAAAA, KEY) EOR BBBB, KEY) EOR CCCC, KEY) 355 generated and written in the last process C.

  By verifying this process pass certificate data f (f (f (AAAAA, KEY) EOR BBBB, KEY) EOR CCCC, KEY) 355, whether the RFID tag 300 has passed through the correct process or the process pass signature data has been altered. It can be verified whether it is not done.

  In order to verify whether or not the process pass certificate data is correct, first, using the process sequence passed by the RFID tag 300 and the process code of each process, if the correct process is passed, it is generated at the last process The process pass certificate data to be written is written. Then, it is verified whether or not the process pass signature data stored in the RFID tag matches the process pass signature data generated at the time of verification. If they match, it can be determined that the correct process has been passed, and if they do not match, it can be determined that the correct process has not been passed or that the process pass certificate data has been tampered with.

  When the verification is performed, it may be executed by a process pass signature or a control device of the last or intermediate step, or may be executed by an external device such as another personal computer. Hereinafter, an apparatus for verifying the process order is described as a process verification unit (not shown). The process verification unit is included in the process management apparatus, the management apparatus, or other external apparatus. It is desirable that a process management apparatus or an external apparatus for a process to be verified is connected via a network or the like so that process pass signature data and a process code of an RFID tag can be acquired. In the verification, the function f () and KEY for generating the process data and process pass certificate data for each process, and the process sequence when the RFID tag passes the correct process can be acquired. A configuration is desirable.

  FIG. 12 shows a flow of generating the process pass certificate data generated in the last process and written in the RFID tag when the correct process is passed in order to verify the process pass certificate data in the process verification unit. FIG.

  First, when passing through a correct process, process pass certificate data generated in each process and written in USER4 of the RFID tag is obtained. When the RFID tag passes through the process, the process pass signature data is generated, and the process pass signature data is obtained by the same method as the processing when the RFID tag USER4 is written.

  First, the process code AAAA700 of process A stored in USER1 of the RFID tag is read from USER1. The process code of process A can be presumed to be written if the RFID tag is correctly processed in USER 1 in process A. You may accumulate and acquire from there. Using the acquired code AAAA700 and the function f () and KEY, the process pass certificate data f (AAAAA, KEY) 701 generated when the process A is passed is obtained.

  Next, since the RFID tag moves from the process A to the process B in the correct path, process pass signature data to be written in the RFID tag is generated in the process B. Similarly to the process A, the process code BBBB 702, the function f (), and the key f in the process B and the process pass certificate data f () generated in the process B using the process pass certificate data in the previous process A are used. f (AAAAA, KEY) EOR BBBB, KEY) is obtained.

  Next, similarly, using the process code CCCC 704 in the process C, the function f (), the key, and the process pass certificate data in the previous process B, the process pass certificate data f (f (f (f ( AAAA, KEY) EOR BBBB, KEY) EOR CCCC, KEY). By verifying whether or not the process pass certificate data matches the process pass certificate data stored in the USER4 of the RFID tag shown in FIG. 10, it is verified whether or not the RFID tag has passed through the correct process. Can do.

  FIG. 13 is a diagram illustrating a flowchart of the process verification unit of the process of verifying the process pass certificate data of the RFID tag described in FIG. In step S710, the process pass certificate data stored in the USER4 of the RFID tag is read using the reader / writer of the process management apparatus, and the counter for counting the number of processes is set to 0, and the process proceeds to step S711. The process pass signature data of the RFID tag may be read from the RFID tag at the time of verification, or the process pass signature data is acquired in advance and stored in the process management device, the external device or the process verification unit, and at the time of verification You may get from there.

  In step S711, the function f (), KEY, process code AAAA, BBBB, and CCCC for each process are acquired, and the process proceeds to step S712. The functions f () and KEY are accumulated in advance in the process management device, the external device, or the process verification unit, and acquired from there. The process code for each process may be acquired from USER1 to USER3 of the RFID tag memory at the time of verification, or the data of USER1 to USER3 is accumulated in the process management device, the external device, or the process verification unit, and acquired at the time of verification. Alternatively, since the order of the process through which the RFID tag passes can be estimated, it may be stored in advance in a process management apparatus, an external apparatus, or a process verification unit, and acquired from the process at the time of verification.

  In step S712, the process pass certificate data generated in the self process is obtained using the function f (), the key, the process code of the self process, and the process pass certificate data generated in the previous process obtained in step S711, and step S713. Proceed to When there is no previous process, the process pass certificate data of the previous process is none, 0000, or an initial value set in advance. In step S713, the value of the counter is compared with the number of processes. If they match, the process proceeds to step S715, and if they do not match, the process proceeds to step S714. The number of processes may be acquired from the number of process data stored in the USER memory of the RFID tag, or may be acquired from the number of processes that are passed in advance.

  In step S714, 1 is added to the value of the counter, and the process proceeds to step S712 to perform processing in the next step. On the other hand, in step S715, it is verified whether or not the process pass certificate data acquired in step S710 matches the process pass certificate data generated in step S714.

  If they match, the process proceeds to step S716. In step S716, it is determined that the RFID tag has passed through the correct process with the correct process pass certificate data, and the process proceeds to step S718.

  On the other hand, if the process pass certificate data does not match in step S715, the process proceeds to step S717. In step S717, it is determined that the process pass signature data of the RFID tag has been tampered with or has not passed through the correct process, and the process proceeds to step S718. In step S718, the verification ends. The verified result may be transmitted to an external device or displayed on a display device.

  Here, since the memory size of the RFID tag is generally several tens to several hundreds of bytes, the area for storing the process code is limited, and only the number of memories that can be stored is verified through the process. I can't. Therefore, a method for verifying the passage of processes exceeding the number of process codes that can be stored in the RFID tag will be described.

  When the RFID tag memory runs out, the contents of the RFID tag are stored in a management device other than the process management device or an external device using a network or the like. If the process management apparatuses for all processes are connected to one management apparatus, the RFID tag data and processing results can be transmitted to the management apparatus for each process and managed together by the management apparatus. However, since the configuration in which all process management apparatuses are connected to one management apparatus via a network is difficult in terms of cost, the method of storing process codes in an RFID tag and the process management apparatus connected to a network Is preferably combined with a method of transmitting to the management device.

  Here, a process management method will be described in which a plurality of processes and one management apparatus are included, and process management apparatuses of several processes are connected to the management apparatus via a network.

  FIG. 14 is a diagram showing a system including five processes and a management apparatus. The configuration and function for each process are the same as those described in FIG. A management device 820 including a control device 821 and a database 822 is added, and the process management device 810 of the process A800 and the process management device 813 of the process D803 are connected to the management device 820 via a network so that data can be transmitted and received.

  When the RFID tag 300 passes through the process A 800, the process management device 810 executes writing or reading with respect to the RFID tag 300. Since the process management device 810 is connected to the management device 820 via a network, the process management device 810 can transmit and receive data to and from the control device 821 of the process management device 810 and the management device 820, accumulate data in the database 822, Or you can get Thereafter, the RFID tag 300 moves to step B801. Similarly, in step B801, the process management apparatus 811 performs writing or reading on the RFID tag 300, and the RFID tag 300 moves to step C802.

  Similarly, in step C802, the process management apparatus 812 executes writing or reading with respect to the RFID tag 300. Thereafter, the RFID tag 300 moves to step D803.

  In step D803, the process management device 813 similarly performs writing or reading on the RFID tag 300, and the RFID tag 300 moves to step E804. Since the process management apparatus 813 of the process D803 is connected to the management apparatus 820 via the network in the same manner as the process management apparatus 810 of the process A, data can be transmitted and received in the same manner. In step E804, the process management device 814 similarly performs writing or reading on the RFID tag 300.

  Next, a method of writing the process pass certificate data and the process code in the RFID tag with the configuration shown in FIG. 14 will be described.

  FIG. 15 is a diagram showing a process code of each process. The process A800 has a process code AAAA830. The process B801 has a process code BBBB831. The process C802 has a process code CCCC832. The process D803 has a process code DDDD833. The process E804 has a process code EEEE834. Each process code may be held by a process verification unit or an external apparatus connected to the process management apparatus. It is desirable to have at least the process code of your own process.

  FIG. 16 is a diagram illustrating the content of data in the RFID tag 300 when the process described with reference to FIG. 14 is performed. The method for generating the process pass certificate data is the same as that shown in FIG.

  First, 0000 is stored in the USER 1324, USER 2325, USER 3326, and USER 44327 of the RFID tag 300 in a state where there is no data. When the RFID tag 300 passes through the process A, the process code AAAA840 of the process A is written in the USER 1324. Using the function f () 145 and KEY 146 described in FIG. 8 and the process code AAAA of the process A, the process pass certificate data f (AAAAA, KEY) 841 is obtained and written into the USER 4327.

  Next, when the RFID tag 300 passes through the process B, the process code BBBB842 of the process B is written in the USER 2325. Further, f (f (AAA, KEY) EOR BBBB, KEY) is obtained by using the function f () 145, KEY 146, the process code BBBB of process B, and the process pass certificate data written in USER 4327 in process A, and USER 4327 is obtained. Overwrite to.

  Next, when the RFID tag 300 passes through the process C, the process code CCCC844 of the process C is written into the USER 3326. The function f () 145 and KEY 146, the process code CCCC of process C, and the process pass certificate data written to USER 4327 in process B are used to generate f (f (f (AAAAA, KEY) EOR BBBBB, KEY) EOR CCCC. , KEY) and overwrites USER4327.

  Next, when the RFID tag 300 passes through the process D, it tries to write the process code DDDD846 of the process D in the USER 1324. However, in the process up to process C, data has already been written in USER1 to USER3 and there is no space, so the process code of process D cannot be written. Therefore, since the process management apparatus of process D is connected to the management apparatus via a network, the contents stored in USER 1324, USER 2325, and USER 3326, AAAA 840, BBBB 842, and CCCC 844 are transmitted to the management apparatus and stored in the database. Further, the contents of USER 1324, USER 2325, and USER 3326 in the memory of the RFID tag 300 are erased. That is, 0000 is written. Thus, by providing a space where data can be written, the process code of process D can be written to USER1.

  The function f () 145 and KEY 146, the process code DDDD of process D, and the process pass certificate data written to USER 4327 in process C are used to create f (f (f (f (AAAAA, KEY) EOR BBBBB, KEY). EOR CCCC, KEY) EOR DDDD, KEY) is obtained and overwritten to USER4327.

  Next, when the RFID tag 300 goes through the process E, the process code EEEE848 of the process E is written in the USER 2325. The function f () 145, the key 146, the process code EEEE849 of the process E, and the process pass certificate data written to the USER 4327 in the process D are used to generate f (f (f (f (f (AAAAA, KEY) EOR BBBB, KEY) EOR CCCC, KEY) EOR DDDD, KEY) EOR EEEE, KEY) is obtained and written to USER4327.

  FIG. 17 is a process in which the process management apparatus is connected to the management apparatus via a network, and the process management apparatus writes the process code and process pass certificate data for each process to the RFID tag and transmits the data to the management apparatus. It is the flowchart which showed the process of the apparatus. If the process management apparatus is not connected to the management apparatus via a network, processing is performed according to the flowchart shown in FIG. Detailed description of the same processing as the flow of FIG. 10 is omitted.

  In step S900, process processing is started, and the process proceeds to step S901. Since the process process start method is the same as the process process start in FIG. In step S901, the process pass certificate data of the previous process stored in USER4 is acquired from the RFID tag 300 using the reader / writer of the process management apparatus, and the process proceeds to step S902. When there is no pre-process, none, 0000, or an initial value is used as in FIG.

  In step S902, the process code of the own process is acquired from the process management apparatus or the management apparatus connected to the network, and the process proceeds to step S903. In step S903, the process pass certificate data is obtained using the process pass certificate data of the previous process acquired in step S901, the process code acquired in step S902, the function f () and the KEY, and the process proceeds to step S904.

  In step S904, using the reader / writer of the process management apparatus, the process pass signature data obtained in step S903 is overwritten on USER4 of the RFIF tag 300, and the process proceeds to step 905.

  In step S905, it is searched whether USER1 to USER3 of the RFID tag 300 are empty, that is, whether there is 0000. If 0000 is present, the process proceeds to step S906. In step S906, the process code is written in USER of 0000 using the reader / writer of the process management apparatus, and the process proceeds to step S909.

  On the other hand, if it is determined in step S905 that there is no free space in USER1 to USER3, that is, 0000, the process proceeds to step S907. In step S907, the contents of USER1 to USER3 are acquired from the RFID tag 300 and transmitted to the management apparatus connected to the network. The management apparatus stores the contents in the database, and the process proceeds to step S908.

  In step S908, the contents of USER1 to USER3 of the RFID tag are erased, that is, 0000 is written, and the process proceeds to step S906. In step S909, the process process ends. Since the process for process management in a certain process is completed, the RFID tag 300 moves to the next process.

  16 and 17, if all the contents of USER1 to USER3 of the RFID tag are written, all the data of USER1 to USER3 are transmitted to the management device, and all of USER1 to USER3 are erased, but the data of USER1 to USER3 Of these methods, only the oldest data may be transmitted to the management apparatus, and only the transmitted USER may be deleted. In this case, it is necessary to be able to acquire which data is the oldest among the data of USER1 to USER3. For example, a method of writing the order written in USER1 to USER3 in another area, a method of writing data indicating the oldest data area in another area, and the order of process codes. There are a method of including data and a method of grasping the order by a process management device or a management device.

  Next, a method for verifying the process pass signature data generated in FIGS. 14 to 17 and written in the RFID tag will be described.

  FIG. 18 is a diagram showing the contents of the memory after the RFID tag has passed through the five steps of FIG. In USER1 of the RFID tag 300, process data DDDD846 of process D is stored. In USER2, process data EEEE of process E is stored. USER3 stores 0000, that is, there is no data. USER4 stores process pass certificate data 849 generated through process A, process B, process C, process D, and process E in this order. By verifying the process pass certificate data 849, it is possible to verify whether the RFID tag 300 has passed the correct process.

  FIG. 19 is a diagram showing a flow of generating process pass certificate data to be written in the RFID tag in the last process when the correct process is passed in order to verify the process pass certificate data in the process verification unit. .

  First, process pass certificate data in process A is generated. However, since only the process codes of the process D and the process E are stored in the memory of the RFID tag 300, the process code of the process A is not known. Therefore, the process code stored in the management apparatus connected to the network is acquired and used. The upper right of FIG. 19 is data transmitted from the process management apparatus and stored in the management apparatus. The order 1000 stored in the RFID tag 300, the process 1001, and the process code 1002 of the process 1001 are stored. As a result, the order through the process, the process code AAAA1003 of the process A, the process code BBBB1004 of the process B, and the process code CCCC1005 of the process C can be acquired.

  In the process A, the process pass certificate data f (AAAAA, KEY) 1020 is obtained using the process code AAAA1010 of the process A and the function f () and KEY. The function f () and KEY are held by the process verification unit, the process management device, or the management device, and are acquired by the process verification unit.

  In the process B, the process code BBBBB1011 of the process B, the function f () and the KEY, and the process pass certificate data 1020 of the process A generated and written in the process A if the correct process is passed, are used in the process B. The process pass certificate data f (f (AAAA.KEY) EOR BBBB, KEY) 1021 is obtained.

  In the process C, the process pass certificate data f (f (f (AAAAA, KEY) EOR in the process C is obtained by using the process code CCCC1012 of the process C, the function f () and KEY, and the process pass certificate data 1021 of the process B. BBBB, KEY) EOR CCCC, KEY). The process codes of process D and process E are stored in USER1 and USER2 of the memory of the RFID tag 300, and each process code is read from the RFID tag.

  In the process D, the process pass certificate data f (f (f (f (AAAAA, KEY) in the process D is obtained by using the process code DDDD1013, the function f () and the key KEY of the process D and the process pass certificate data 1022 of the process C. ) EOR BBBB, KEY) EOR CCCC, KEY) EOR DDDD, KEY) is obtained.

  In the process E, the process pass certificate data f (f (f (f (f (fAAAAA) in the process E is used by using the process code EEEE1014, the function f () and the key KEY of the process E and the process pass certificate data 1023 of the process D. , KEY) EOR BBBB, KEY) EOR CCCC, KEY) EOR DDDD, KEY) EOR EEEE). The RFID tag 300 passes through the correct process by verifying whether the process pass certificate data of the process E obtained here matches the process pass certificate data stored in the USER4 of the RFID tag 300 shown in FIG. Can be verified.

  FIG. 20 is a diagram illustrating a process flow in the process verification unit for verifying the process pass certificate data of the RFID tag described in FIG. A detailed description of the same processing as in FIG. 13 is omitted.

  When the process starts, in step S1100, the process passer data stored in the USER4 of the RFID tag 300 is read using the reader / writer of the process management apparatus, the counter is set to 0, and the process proceeds to step S1101.

  In step S1101, process data stored in the USER of the RFID tag 300 is acquired, and the process proceeds to step S1102. In this example, the process code DDDD of the process D and the process code EEEE of the process E are acquired. USER3 does not store 0000, that is, a process code.

  In step S1102, the process management apparatus connected to the network acquires from the management apparatus the process code transmitted to and stored in the management apparatus, and the process advances to step S1103. In this example, the process code AAAA of the process A, the process code BBBB of the process B, and the process code CCCC of the process C are acquired.

  In step S1103, using the function f (), process data, KEY, and process pass certificate data generated in the previous process, process pass certificate data generated in the process is generated. If there is no previous process, the process pass certificate data of the previous process is none or 0000, or an initial value set in advance is used.

  In step S1104, the number of processes is compared with the counter. If they match, the process proceeds to step S1106, and if they do not match, the process proceeds to step S1105. In step S1105, 1 is added to the counter, and a process for obtaining process pass certificate data in the next process is performed.

  In step S1106, it is verified whether the process pass certificate data stored in the USER4 of the RFID tag 300 matches the process pass certificate data generated for verification. If they match, the process proceeds to step S1107. If they do not match, the process proceeds to step S1108.

  In step S1107, it is determined that the process pass certificate data of the RFID tag 300 is correct and passed through the correct process, and the process advances to step S1109. On the other hand, in step S1108, it is determined that the process pass certificate data of the RFID tag 300 has been tampered with or has not passed through the correct process, and the process proceeds to step S1109. In step S1109, the verification of the process pass certificate data ends, and the process ends. The verification result may be transmitted to an external device or displayed on a display device.

  14 to 20, an example in which the process management devices of process A and process D among the five processes A, B, C, D, and E are connected to the management apparatus via a network. However, the number of processes and the number and combination of process management apparatuses connected to the management apparatus may be other. However, in order to write a process code to the RFID tag, it is desirable to arrange a process management apparatus connected to the network within the number of memories of the RFID tag.

  One of the USER areas where the RFID tag can be freely written or read stores the process pass signature data, and the rest stores the process code. Assuming that the number of USERs of RFID tags is N, it is desirable that the number of process management devices connected to the network be within N−1. With this configuration, the process verification unit verifies the process order by the number of process codes stored in the USER of the RFID tag even when the process code is unknown because the process verification unit is not connected to the management device and the network. be able to.

  The process management device connected to the network may transmit the USER data of the RFID tag to the management device at the timing when the USER has no space, or at the time when there is no space when writing, A process management apparatus that always transmits the contents of the USER may be determined in advance, and may be transmitted when the process management apparatus is passed through.

  As for the USER data to be transmitted and erased, as shown in the above example, all USER data may be transmitted and erased, or only the oldest data may be erased and transmitted. Two or more data may be transmitted and deleted.

  The timing for verifying the process order in the process verification unit may be verified at any time as long as a necessary process code can be acquired. For example, the RFID tag may go through all the processes, and finally obtain and verify the process code stored in the RFID USER and the process code stored in the management apparatus. Verification may be performed by an arbitrary process management apparatus in the middle, or verification may be performed before the USER of the RFID tag runs out and is transmitted to the management apparatus. Further, if there is process data stored in the USER of the RFID tag, the stored process order can be verified without a network-connected management device.

  In the examples so far, the process pass certificate data is generated by using the process code, the KEY, and the function f (). However, there is a problem that the process pass certificate data of the product that passes through the same two processes becomes the same. is there. Therefore, a method of using UII data that is identification data of RFID tags having different data for each product will be described. UII is shown by UII322 of the RFID tag memory structure of FIG. 7, and has different IDs and information for each product to be attached.

  FIG. 21 is a diagram illustrating a process of adding UII data to the process described with reference to FIG. 8 when the process pass certificate data is generated. The process of the first process without the previous process is shown on the left side of FIG. Details of the same processing as in FIG. 8 are omitted.

  First, when the exclusive OR of the process data AAAA and the UII of the RFID tag 300 is taken, it can be expressed as AAAA EOR UII1200. When there is no previous process, when 0000 or an initial value is used, an exclusive OR is performed with AAAA, UII, and an initial value (or 0000). Using this value, the function f () 1201, and the KEY 1202, the process pass certificate data f (AAAAA EOR UII, KEY) is obtained.

  Next, the process when there is a previous process is shown on the right side of FIG. If f (AAAA EOR UII, KEY), which is the process pass certificate data of the previous process, UII of the RFID tag 300 and the process code (BBBB in this case) of the own process are exclusive ORed, f (AAAAA EOR UII, KEY) ) EOR BBBB EOR UII. Using this value, the function f (), and the KEY, the process pass signature data f (f (AAAA EOR UII, KEY) EOR BBBB EOR UII, KEY) is obtained. The process pass signature data generated here is overwritten on the USER4 of the RFID tag.

  The method for verifying the process pass certificate data has been described with reference to FIGS. In this method, at the time of verification, the process data, function f (), and KEY are used to generate the process pass certificate data according to the process order. It is also possible to use a method in which the comparison is made at the time of verification.

  FIG. 22 is a diagram showing a table of route patterns for all processes. All three patterns of process A, process B, and process C, A → B → C1220, A → C → B1221, B → A → C1222, B → C → A1223, C → A → B1224, C → B → A1225 And the table of each process pass certificate data of 1 process 1230, 2 processes 1231, and 3 processes 1232 is shown. By having this table in the process management apparatus or the process verification unit, the function f (), the KEY, and the process code can be acquired each time and verified without generating process pass certificate data.

  In the method for verifying the process order described so far, when the process management apparatus writes the memory of the RFID tag, the USER may be locked so that it cannot be read or cannot be written. At that time, reading is performed after releasing the non-readable lock when reading. When writing, remove the lock that cannot be written and then write. To lock or unlock the read or write, a password is required and can only be locked or unlocked when the RFID tag password matches. Therefore, it is desirable to have the password in the authorized process management device or the process verification unit. Thereby, security such as tampering can be further improved. Further, the USER4 area may be locked so that it cannot be read or written.

  In the description of the above embodiment, the RFID tag is taken as an example of the information recording medium. However, the present invention is not limited to the RFID tag, and can transmit / receive or rewrite information stored in and recorded in an information recording medium in a non-contact manner with a certain communication distance. An information recording medium may be used. For example, what is called an IC card, an information processing apparatus such as a mobile phone or a mobile terminal, or a combination thereof may be used.

It is the figure which showed the process management apparatus and information recording medium RFID tag which moves in two processes concerning the Example of this invention. It is the figure which showed the structure of the RFID tag system which consists of an information recording medium RFID tag and an external communication apparatus reader / writer. It is the block diagram which showed the internal structure of the information recording medium RFID tag. It is the block diagram which showed the internal structure of the external communication apparatus reader / writer. It is the figure which showed the structure where an information recording medium RFID tag passes through three processes. It is the figure which showed the process code which three processes each have. It is the figure which showed the data structure concerning the memory structure which an information recording medium RFID tag has, and embodiment by this invention. It is the figure which showed the process which produces | generates process passage signature data. It is the figure which showed the data content stored in the information recording medium RFID tag when an information recording medium RFID tag goes through a process. It is the figure which showed the flowchart of the process management apparatus which showed the process at the time of writing a process code and process passage signature data in an information recording medium RFID tag in a certain process. It is the figure which showed the content of the data stored in the information recording medium RFID tag, after an information recording medium RFID tag passed through three processes. It is the figure which showed the flow which produces | generates the process passage signature data for verification in order to verify the process passage signature data in a process verification part. It is the flowchart which showed the process which verifies the process passage signature data of an information recording medium RFID tag in a process verification part. It is the figure which showed the system comprised from five processes and a management apparatus. It is the figure which showed the process code which each process has. It is the figure which showed the content of the data stored in the information recording medium RFID tag. It is the flowchart which showed the process of the process management apparatus at the time of the process management apparatus connected with the management apparatus writing a process code and process passage signature data in an information recording medium RFID tag, and transmitting data to a management apparatus. It is the figure which showed the content of the data stored in the information recording medium after the information recording medium RFID tag passed through five processes. It is the figure which showed the flow which produces | generates the process passage signature data for verification in order to verify the process passage signature data in a process verification part. It is the flowchart which showed the process which verifies the process pass verification data of an information recording medium RFID tag in a process verification part. It is a figure which shows the process which adds and calculates the data of UII which is the identification data of an information recording medium RFID tag at the time of the production | generation of process passage signature data in a process management apparatus. It is the figure which showed the process passage signature data of the routing pattern of all the processes.

Explanation of symbols

200: Control device, 201: Control device, 210: Process management device A, 211: Process management device B, 212: Process management device C, 300: Information recording medium RFID tag, 301: Antenna, 302: Rectifier, 303: Power supply unit, 304: communication control unit, 305: control unit, 306: storage unit, 320: memory bank, 321: RESERVED, 322: UII, 323: TID, 324: USER1, 325: USER2, 326: USER3, 327: USER4, USER: 328, 330: size, 340: stored data, 347: process pass signature data, 400: external communication device reader / writer, 401: reader / writer body, 402: reader / writer antenna, 403: transmission / reception unit, 404: communication Control unit, 405: Control unit, 406: Host interface, 407 Power supply unit,
810: Process management device, 811: Process management device, 812: Process management device, 813: Process management device, 814: Process management device, 820: Management device, 821: Control device, 822: Database.

Claims (16)

A data transmission / reception unit that performs data transmission / reception with an information storage medium that stores identification data of the management object in the data storage unit;
A process data holding unit that holds process data indicating a process;
A process pass certificate data generating unit that generates process pass certificate data indicating that the process has passed from process data indicating the process;
The data transmission / reception unit transmits / receives the identification data, the process data, and the process pass certificate data to / from the information recording medium,
Using the identification data and the process data, the process pass signature data is generated by an operation using a hash function or an operation using an encryption key ,
The process management apparatus, wherein the process pass certificate data is stored in the data storage unit of the information storage medium. The process management apparatus according to claim 1,
The process management apparatus characterized in that the length of the created process pass certificate data is a fixed length. The process management device according to claim 1, wherein
When storing the process pass certificate data in the data storage unit of the information storage medium, if the process pass certificate data is already stored, the process management apparatus overwrites and stores the process pass certificate data. A process management apparatus according to any one of claims 1 to 3,
A process management apparatus, wherein when performing an operation using an encryption key , the process pass certificate data is generated using an encryption key different for each process. The process management apparatus according to any one of claims 1 to 3,
A process management device, wherein when performing an operation using an encryption key , the process pass certificate data is generated using the same encryption key for each process. A process management apparatus according to any one of claims 1 to 5,
A process management apparatus which transmits command data for setting or canceling prohibition of reading of data from the information recording medium or prohibition of writing of data to the information recording medium. The process management apparatus according to any one of claims 1 to 6,
A process order data storage unit indicating the nth process data;
The process pass certificate data generation unit generates the nth process pass certificate data from at least the nth process data and the (n-1) th process pass certificate data, and transmits the generated data to the information recording medium. A process management apparatus characterized by: A process management apparatus according to any one of claims 1 to 7,
Comparing the process pass certificate data stored in the information recording medium passed through a plurality of processes with the verification process pass certificate data generated according to the process passed through the information recording medium;
If they match, the process management apparatus, wherein said information recording medium is Ru comprises determining step verification unit and passed through the process passed through the. An information recording medium including a data storage unit,
A process management system having a plurality of process management devices including a data transmission / reception unit for transmitting / receiving data to / from an information recording medium,
The information recording medium includes an identification data storage unit that stores identification data of a management object, a plurality of process data storage units that store process data, and one or more process pass certificate data storage units that store process pass signature data. With
Of the plurality of process management apparatuses, a first process management apparatus includes a first process data holding unit, a first data transmission / reception unit that transmits / receives data to / from the information recording medium, and first process pass certificate data. A first process pass signature data generation unit for generating
Among the plurality of process management apparatuses, a second process management apparatus includes a second process data holding unit, a second data transmission / reception unit that transmits / receives data to / from the information recording medium, and second process pass certificate data. A second process pass signature data generation unit for generating
The first process management device is
The identification data is acquired from the information recording medium by the first data transmitting / receiving unit ,
The first process pass certificate data generation unit uses the identification data and the first process data to calculate the first process pass certificate data by a calculation using a hash function or a calculation using an encryption key. Generate
The first data transmitting / receiving unit transmits the first process pass signature data to the information storage medium ,
The second process management device is
The identification data and the first process pass signature data are acquired from the information recording medium by the second data transmission / reception unit,
By the calculation using a hash function or the calculation using the encryption key by using the identification data, the second process data, and the first process pass signature data by the second process pass certificate data generation unit. Generating the second process pass certificate data;
Process control system according to the by the second data transmitting and receiving unit, characterized that you send the second process pass certificate data to the information storage medium. The process management system according to claim 9 ,
The process management system characterized in that the first process pass certificate data and the second process pass certificate data to be created have a fixed length. A process control system according to claim 9 or 10,
When the first process pass certificate data and the second process pass certificate data are stored in the data storage unit of the information storage medium, if the process pass certificate data is already stored, it is overwritten and stored. Process control system characterized by letting The process management system according to any one of claims 9 to 11 ,
A process management system , wherein when performing an operation using an encryption key, the process management device generates the process pass certificate data using an encryption key that is different for each process. A process management system according to any one of claims 9 to 11 ,
A process management system in which, when performing an operation using an encryption key, the process management device generates the process pass certificate data using the same encryption key for each process. A process management system according to any one of claims 9 to 13 ,
The process management system, wherein the process management apparatus transmits command data for setting or canceling prohibition of reading of data from the information recording medium or prohibition of writing of data to the information recording medium. The process management system according to any one of claims 9 to 14 ,
The plurality of process management devices further includes an nth process management device,
The n-th process management apparatus holds the data as the n-th Engineering by the n-th process data holding portion to which the n-th process management apparatus is provided,
The identification data and the (n-1) th process pass certificate data are acquired from the information recording medium by the nth data transmitting / receiving unit provided in the nth process management device ,
By the n-th process pass certificate data generation unit for the n-th process management apparatus comprises the identification data, and data about the n-th Engineering, and pass certificate data as the (n-1) th Engineering Using the hash function or the operation using the encryption key to generate the nth process pass signature data,
The process management system, wherein the nth process transmitter / receiver provided in the nth process management apparatus transmits the nth process pass certificate data to the data storage section of the information recording medium. . The process management system according to any one of claims 9 to 15 ,
Comparing the process pass certificate data stored in the information recording medium passed through one or more processes with the verification process pass certificate data generated according to the process passed through the information recording medium;
If they match, the process management system of the information recording medium is characterized in that the Ru provided with a step of determining verification unit has passed the steps through the.

Images